Implement your own JAAS LoginModule like this one:
Source code is quite simple so you can alter existing one.
Thanks for replying, Boleslaw. I was doing some research based on the link that you provided. I was looking at this page:
and also, the associated link "Creating a custom login module".
The custom SSO utility classes that I would like to reuse do the following:
1. Authenticate against the LDAP server
2. Retrieve application specific roles from the database
So can you tell me: Will I be able to extend one of the LoginModule classes that are listed in the link above and then configure my new class in /conf/login-config.xml? If I am conceptualizing what needs to be done correctly, I need to configure my own login module class whose implementation will more or less function like a hybrid. That is, one set of custom SSO utility classes will take user credentials and authenticate against the LDAP server. Once authentication is successful, I will use another set of custom classes to query the roles from the database.
Can I entend one of the existing LoginModule classes to accomplish this? Which methods would I have to override in the LoginModule class in order to plug in the authentication/role retrieval logic?
Thanks so much.
After some additional fact finding, I have a different need as it pertains to a pluggable SSO solution. We have a central SSO web application (servlet) that handles sign on requests. The servlet already communicates with a JAAS login module, but does some additional processing during sign on that other applications are dependent on, so the servlet cannot be removed.
Is there a way to plug in an SSO servlet to the JBoss portal so that it can handle the initial authentication to the JBoss portal? I should be able to move the JAAS login module to the portal if necessary, but I need the central login page to be hosted by the servlet.